On Mon, 2001-11-26 at 16:33, Harry Hoffman wrote: > Hey Aleix, > Any chance of getting that application?? I'm still a little confused > about what needs to be done when creating your own CA. I've used CA.pl to > create the certificate authority, now I need to figure out how to create > certificates for various apps (apache, postfix) and for users. Every > how-to that I read uses a mix between CA.pl and the actual openssl > commands. Sorry to sound like such a newbie, I've used openssl before but > never to this extent. >
sorry, i've been off all the weekend. i would create everything with openssl, including the CA. openssl generates pkcs standard formats so no problem using them in applications. for the imp web mail client i would write a little extension to get the user cert file from ldap as you already said. php has lots of easy-to-use functions to do that. i can send you some code to store certificates in ldap using php. apache uses a pem for its certificate an another pem for its private key, and there is no problem generating them using openssl. i've never used pki in postfix, so i can not help there. if you want more concrete details on how to generate those files you can send me an email. an i'll help you if i can. regards, -- Aleix ------------------------------ Aleix Conchillo Flaqué SCYTL founder & R&D Engineer e-mail: [EMAIL PROTECTED] phone: +34 933 016 547 ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
